General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsScientists Extract RSA Key From GnuPG Using Sound of CPU
Well, that's disconcerting...
http://it.slashdot.org/story/13/12/18/2122226/scientists-extract-rsa-key-from-gnupg-using-sound-of-cpu
MannyGoldstein
(34,589 posts)Thanks.
cantbeserious
(13,039 posts)eom
lapfog_1
(29,205 posts)What I would do is simply have the CPU perform random math calculation while doing the encryption routine (inject meaningless CPU cycles into the calculation, thus "noise" into the analysis).
while not perfect, it might make it very difficult to break via this method. However it would increase the cost (either by slowing down or using more CPU cycles) the encryption by using RSA (and likely most other public key encryption algorithms).
Chan790
(20,176 posts)Even random number generators are not truly random. They eventually fall into complex and predictable patterns once one discerns the formula used to generate the only-seemingly-random data unless the generation of numbers is based on an external random stimuli such as radioactive decay or micro-seismic activity rather than processor computations.
http://computer.howstuffworks.com/question697.htm
lapfog_1
(29,205 posts)I would have the encryption routine, while doing actual encryption operations, select other operations at random (FFTs, etc) and run both operations at the same time (interleave the instruction streams). Just in case they can tell what part of L1 or L2 cache might be tied to what, I would flush cache at random intervals as well... and, just to confuse things further, I would randomly move chunks of memory around (in physical memory), just in case they can snoop that as well.
Recursion
(56,582 posts)Always assume an attacker has access to your entire cryptosystem except for the key. If you use a software random number generator, that's included.
jazzimov
(1,456 posts)lapfog_1
(29,205 posts)each math instruction, and the registers and circuits that do the math, might give off a signature noise, along with heat (and possibly a very small amount of light, along with the result of the calculation.
NoOneMan
(4,795 posts)Orrex
(63,216 posts)Fun fact.
AgingAmerican
(12,958 posts)Check THIS one out.
Recursion
(56,582 posts)Awesome, but terrifying...